Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252461	5	警告	Google	-	Google Chrome の ChildProcessSecurityPolicy::CanRequestURL 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0664	2010-11-24 15:02	2010-01-25	Show	GitHub Exploit DB Packet Storm

252462	5	警告	Google	-	Google Chrome の ParamTraits::Read 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0663	2010-11-24 15:02	2010-01-25	Show	GitHub Exploit DB Packet Storm

252463	5	警告	Google	-	Google Chrome の ParamTraits::Read 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0662	2010-11-24 15:01	2010-01-25	Show	GitHub Exploit DB Packet Storm

252464	5	警告	Google	-	Google Chrome における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0660	2010-11-24 15:01	2010-01-25	Show	GitHub Exploit DB Packet Storm

252465	5	警告	Google	-	Google Chrome における document.styleSheets[0].href のプロパティ値を読まれる脆弱性	CWE-Other その他	CVE-2010-0315	2010-11-24 15:01	2010-01-14	Show	GitHub Exploit DB Packet Storm

252466	9.3	危険	Google	-	Google Chrome にて使用される Skia における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0658	2010-11-24 15:00	2010-01-25	Show	GitHub Exploit DB Packet Storm

252467	9.3	危険	Google	-	Windows 上で稼働する Google Chrome における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2010-0657	2010-11-24 15:00	2010-01-25	Show	GitHub Exploit DB Packet Storm

252468	9.3	危険	Google	-	Google Chrome における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0655	2010-11-24 15:00	2010-01-25	Show	GitHub Exploit DB Packet Storm

252469	9.3	危険	Google	-	Google Chrome の sandbox/src/crosscall_server.cc における整数オーバーフロー脆弱性	CWE-189 数値処理の問題	CVE-2010-0649	2010-11-24 15:00	2010-02-10	Show	GitHub Exploit DB Packet Storm

252470	10	危険	Google	-	Google Chrome にて使用される Google V8 内の factory.cc における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2010-0646	2010-11-24 14:59	2010-02-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
287671	-	ruby-lang	ruby	lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an X…	CWE-20 Improper Input Validation	CVE-2013-1821	2024-11-21 10:50	2013-04-10	Show	GitHub Exploit DB Packet Storm

287672	-	digineo	thumbshooter	lib/thumbshooter.rb in the Thumbshooter 0.1.5 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.	CWE-94 Code Injection	CVE-2013-1898	2024-11-21 10:50	2013-04-10	Show	GitHub Exploit DB Packet Storm

287673	-	dan_kubb	extlib	The extlib gem 0.9.15 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cau…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1802	2024-11-21 10:50	2013-04-10	Show	GitHub Exploit DB Packet Storm

287674	-	john_nunemaker	httparty	The httparty gem 0.9.0 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or ca…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1801	2024-11-21 10:50	2013-04-10	Show	GitHub Exploit DB Packet Storm

287675	-	john_nunemaker	crack	The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1800	2024-11-21 10:50	2013-04-10	Show	GitHub Exploit DB Packet Storm

287676	-	freedesktop	poppler	poppler/Stream.cc in poppler before 0.22.1 allows context-dependent attackers to have an unspecified impact via vectors that trigger a read of uninitialized memory by the CCITTFaxStream::lookChar fun…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1790	2024-11-21 10:50	2013-04-10	Show	GitHub Exploit DB Packet Storm

287677	-	freedesktop	poppler	splash/Splash.cc in poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to the (1) Splash::arbitraryTransfor…	NVD-CWE-Other	CVE-2013-1789	2024-11-21 10:50	2013-04-10	Show	GitHub Exploit DB Packet Storm

287678	-	freedesktop	poppler	poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger an "invalid memory access" in (1) splash/Spl…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1788	2024-11-21 10:50	2013-04-10	Show	GitHub Exploit DB Packet Storm

287679	-	apple todd_miller	mac_os_x sudo	sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions t…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1776	2024-11-21 10:50	2013-04-9	Show	GitHub Exploit DB Packet Storm

287680	-	linux	linux_kernel	The clone system-call implementation in the Linux kernel before 3.8.3 does not properly handle a combination of the CLONE_NEWUSER and CLONE_FS flags, which allows local users to gain privileges by ca…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1858	2024-11-21 10:50	2013-04-6	Show	GitHub Exploit DB Packet Storm